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DETAILED ACTION 

1. Applicant's amendment filed on March 05, 2008 has been entered. 
Claims 1-22 are pending. Claims 10 and 14 are cancelled by the applicant. 

Examiner's Amendment 

2. An examiner's amendment to the record appears below. Should the 
changes and/or additions be unacceptable to applicant, an amendment may be filed as 
provided by 37 CFR 1 .312. To ensure consideration of such an amendment, it MUST be 
submitted no later than the payment of the issue fee. 

Authorization for this examiner's amendment was given by applicant's 
representative on May 23, 2008. The applicant has agreed to authorize examiner to 
amend claims 1,8,9,13 and cancel claims 1 0 and 14. 

CLAIMS: 

3. Please cancel claims 10 and 14: 

4. Please replace claim 1 as follows: 
1 . A firewall, comprising: 

a first port configured for communication with a first device within a 

first network; 

a second port configured for communication with a second device 
within the first network; 

a third port configured for communication between the first network 
and a second network; and 



a processor configured to: 
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determine that a first portion of the incoming packets should be 
bridged, the first portion having a first source address and a first destination address 
within the first network, wherein the step of determining that the first portion should 
be bridged comprises performing a bridge lookup based upon media access control 
address information of the incoming packets: 

apply a first screening process to the first portion; 

determine that a second portion of the incoming packets should be 
routed, the second portion having a second source address or a second destination 
address outside the first network; and 

apply a second screening process to the second portion. 

5. Please replace claim 8 as follows: 

8. A firewall, comprising: 

means for receiving first packets and second packets at a first 

device; 

means for determining, at the first device, that the first packets 
should be bridged, the first packets having a first source address and a first 
destination address within the first network, wherein the means determines that the 
first packets should be bridged bv performing a bridge lookup based upon media 
access control address information of the first packets; 

means for applying a first screening process to the first packets at 

the first device; 
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means for determining, at the first device, that the second packets 
should be routed; and 

means for applying a second screening process to the second 
packets at the first device. 

6. Please replace claim 9 as follows: 

9. A method of implementing a firewall, comprising: 

receiving first packets and second packets at a first device; 

determining, at the first device, that the first packets should be 
bridged, the first packets having a first source address and a first destination 
address within the first network, wherein determining that the first packets should be 
bridged comprises performing a bridge lookup based upon media access control 
address information of the first packets; 

applying a first screening process to the first packets at the first 

device; 

determining, at the first device, that the second packets should be 

routed; and 

applying a second screening process to the second packets at the 

first device. 

7. Please replace claim 13 as follows 
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13. A computer program embodied in a machine-readable medium, the 
computer program comprising instructions for controlling a firewall to perform the 
following steps: 

receive first packets and second packets at a first device; 

determine, at the first device, that the first packets should be 
bridged, the first packets having a first source address and a first destination 
address within the first network; 

perform a bridge lookup based upon media access control address 
information of the first packets; 

apply a first screening process to the first packets at the first 

device; 

determine, at the first device, that the second packets should be 

routed; and 

apply a second screening process to the second packets at the first 

device. 

Allowable Subject Matter 

8. Claims 1-9, 11-13, and 15-22 are allowed. 

The following is an examiner's statement of reasons for allowance: see 
interview summary. 

Any comments considered necessary by applicant must be submitted no 
later than the payment of the issue fee and, to avoid processing delays, should 
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preferably accompany the issue fee. Such submissions should be clearly labeled 
"Comments on Statement of Reasons for Allowance." 

9. Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Thanhnga (Tanya) Truong whose telephone number 
is 571-272-3858. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Kim Vu can be reached on 571-272-3859. The central fax 
number for the organization where this application or proceeding is assigned is 571- 
273-8300. 

Any inquiry of a general nature or relating to the status of this application 
or proceeding should be directed to the receptionist whose telephone number is 571- 
272-2100. 

/Thanhnga B. Truong/ 

Primary Examiner, Art Unit 2135 



TBT 

May 23, 2008 



